Confessions of the QSA: An Introduction to the Payment Card Industry Data Security Standard

 

As most in the industry know, a QSA must get certified by the PCI Security Standards Security Council to audit merchants for Payment Card Industry Data Security Standard (PCI DSS) compliance. Created in 2004 by major credit card brands, such as Visa and American Express, the council acts as a form of self-regulation.

So, how did Weaver become an expert on PCI, and what types of solutions does it offer its clients?

On this episode of Weaver: Beyond The Numbers, host Tyler Kern talked with Trip Hillman, Director of Cyber Security Services at Weaver, and Kyle Morris, Manager of IT at Advisory Services at Weaver. The trio dug into insights from Weaver’s Quality Security Assessor and explored how Weaver dove headfirst into PCI.

The PCI DSS applies to organizations that store, process, transmit or could affect the security of cardholder data. Companies that fall under this standard could do a variety of things, such as an annual self-assessment questionnaire, or bring in a third-party, independent QSA to do a full-blown report on compliance audit.

Morris is a QSA and started at Weaver about eight years ago. A few years into his career, they had a client, a service provider, start getting asked by their customers if they knew anything about PCI and the report on compliance. At the time, they hadn’t done anything with it, but decided to figure it out. That morphed into Weaver diving headfirst into PCI.

“We help people with self-assessment questionnaires or SAQs and everything from full-on ROCs for Fortune 50 Cloud Providers to small merchants to SaaS solutions,” Morris said.

Follow us on social media for the latest updates in B2B!

Image

Latest

AMAG
Embracing a Customer-Obsessed Culture Is a Mindset at AMAG
April 2, 2025

AMAG Technology embraces a customer-obsessed culture as a core mindset. In one of the many videos highlighting this commitment, Jason Lawrence, Technical Support Manager, is featured for his role in fostering a customer-first approach. From proactive problem-solving to personalized support, Jason and his team exemplify AMAG’s dedication to going above and beyond for customers every…

Read More
AMAG Technology
Customer Obsessed: AMAG Technology Puts Customers at the Core of Everything
April 2, 2025

AMAG Technology’s customer-obsessed approach drives every decision the company makes. Through teamwork and strong leadership, AMAG is dedicated to making every customer interaction memorable and impactful. The customer experience remains at the heart of everything the organization does.

Read More
AMAG
Customer Obsessed: Listening, Learning, and Innovating for You
April 2, 2025

At AMAG Technology, being customer-obsessed means always prioritizing the needs of the customer. Jody Ross, Global VP of Strategic Sales & Customer Success, shares how the company remains committed to listening, learning, and developing solutions that genuinely support customer success. Customer insights drive AMAG Technology’s innovation, ensuring the development of the most effective and impactful…

Read More
video security
Smarter Video Security with Symmetry CompleteView
April 2, 2025

In today’s fast-evolving security landscape, intelligent video management is no longer a luxury—it’s a necessity. AMAG’s Symmetry CompleteView Video Management System rises to meet this demand with a powerful, scalable solution that adapts to organizations of any size. Designed with open architecture and user-friendliness at its core, the system offers seamless integration and effortless deployment….

Read More